1389 Open source projects that are alternatives of or similar to PyParser-CVE

A Tool for Domain Flyovers

Pentest Report Generator

🔐 Docker Container for Penetration Testing & Security

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Sifter aims to be a fully loaded Op Centre for Pentesters

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Yet Another PHP Shell - The most complete PHP reverse shell

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Subdomain enumeration through various techniques

Web path scanner

Pentest: Subdomains enumeration tool for penetration testers.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Awesome Node.js Security resources

Multi OTP Spam Amp/Paralell threads

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Offensive tools as Dockerfiles. Lightweight & Ready to go

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

hydra

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

A tool to test security of json web token

Penetration test Achieve Knowledge Unite Rapid Interface

Hacking Toolkit

Related subdomains finder

Selenium powered Python script to automate searching for vulnerable web apps.

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

🔑 Hash type identifier (CLI & lib)

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Extract subdomains from SSL certificates in HTTPS sites.

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

🌒 Shell command obfuscation to avoid detection systems

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

OSINT Swiss Army Knife

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

A curated list of awesome infosec courses and training resources.

A tool to automate penetration tests

An advanced tool for email reconnaissance

A wrapper for Nmap to quickly run network scans

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Quick SQL Scanner, Dorker, Webshell injector PHP

Intelligence tool but without API key

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

OSINT Tool: Generate username lists for companies on LinkedIn

Automatically Launch Google Hacking Queries Against A Target Domain

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

⚡️An awesome list of the best Termux hacking tools

Maintained collection of OSINT related resources. (All Free & Actionable)

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...